Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(68)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: sandbox/win/src/sandbox_policy_base.h

Issue 1856993003: Implement sandbox hooks to forward OPM related GDI system calls. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Replaced shared memory implementation. Created 4 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« sandbox/win/src/process_mitigations_win32k_policy.cc ('K') | « sandbox/win/src/sandbox_policy.h ('k') | sandbox/win/src/sandbox_policy_base.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ 5 #ifndef SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_
6 #define SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ 6 #define SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_
7 7
8 #include <windows.h> 8 #include <windows.h>
9 #include <stddef.h> 9 #include <stddef.h>
10 #include <stdint.h> 10 #include <stdint.h>
(...skipping 54 matching lines...) Expand 10 before | Expand all | Expand 10 after
65 ResultCode SetStdoutHandle(HANDLE handle) override; 65 ResultCode SetStdoutHandle(HANDLE handle) override;
66 ResultCode SetStderrHandle(HANDLE handle) override; 66 ResultCode SetStderrHandle(HANDLE handle) override;
67 ResultCode AddRule(SubSystem subsystem, 67 ResultCode AddRule(SubSystem subsystem,
68 Semantics semantics, 68 Semantics semantics,
69 const wchar_t* pattern) override; 69 const wchar_t* pattern) override;
70 ResultCode AddDllToUnload(const wchar_t* dll_name) override; 70 ResultCode AddDllToUnload(const wchar_t* dll_name) override;
71 ResultCode AddKernelObjectToClose(const base::char16* handle_type, 71 ResultCode AddKernelObjectToClose(const base::char16* handle_type,
72 const base::char16* handle_name) override; 72 const base::char16* handle_name) override;
73 void AddHandleToShare(HANDLE handle) override; 73 void AddHandleToShare(HANDLE handle) override;
74 void SetLockdownDefaultDacl() override; 74 void SetLockdownDefaultDacl() override;
75 void SetEnableOPMRedirection() override;
76 bool GetEnableOPMRedirection() override;
75 77
76 // Creates a Job object with the level specified in a previous call to 78 // Creates a Job object with the level specified in a previous call to
77 // SetJobLevel(). 79 // SetJobLevel().
78 ResultCode MakeJobObject(base::win::ScopedHandle* job); 80 ResultCode MakeJobObject(base::win::ScopedHandle* job);
79 81
80 // Creates the two tokens with the levels specified in a previous call to 82 // Creates the two tokens with the levels specified in a previous call to
81 // SetTokenLevel(). Also creates a lowbox token if specified based on the 83 // SetTokenLevel(). Also creates a lowbox token if specified based on the
82 // lowbox SID. 84 // lowbox SID.
83 ResultCode MakeTokens(base::win::ScopedHandle* initial, 85 ResultCode MakeTokens(base::win::ScopedHandle* initial,
84 base::win::ScopedHandle* lockdown, 86 base::win::ScopedHandle* lockdown,
(...skipping 77 matching lines...) Expand 10 before | Expand all | Expand 10 after
162 bool lockdown_default_dacl_; 164 bool lockdown_default_dacl_;
163 165
164 static HDESK alternate_desktop_handle_; 166 static HDESK alternate_desktop_handle_;
165 static HWINSTA alternate_winstation_handle_; 167 static HWINSTA alternate_winstation_handle_;
166 static IntegrityLevel alternate_desktop_integrity_level_label_; 168 static IntegrityLevel alternate_desktop_integrity_level_label_;
167 169
168 // Contains the list of handles being shared with the target process. 170 // Contains the list of handles being shared with the target process.
169 // This list contains handles other than the stderr/stdout handles which are 171 // This list contains handles other than the stderr/stdout handles which are
170 // shared with the target at times. 172 // shared with the target at times.
171 base::HandlesToInheritVector handles_to_share_; 173 base::HandlesToInheritVector handles_to_share_;
174 bool enable_opm_redirection_;
172 175
173 DISALLOW_COPY_AND_ASSIGN(PolicyBase); 176 DISALLOW_COPY_AND_ASSIGN(PolicyBase);
174 }; 177 };
175 178
176 } // namespace sandbox 179 } // namespace sandbox
177 180
178 #endif // SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ 181 #endif // SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_
OLDNEW
« sandbox/win/src/process_mitigations_win32k_policy.cc ('K') | « sandbox/win/src/sandbox_policy.h ('k') | sandbox/win/src/sandbox_policy_base.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698